India’s cyber security agency, CERT-In, has issued a high-severity warning for whatsapp users after discovering a critical vulnerability that could allow hackers to steal sensitive data.
The flaw, identified as CVE-2025-55177, affects WhatsApp on iOS and Mac devices, putting millions of users at risk if they do not update to the latest version. Here’s what you need to know to stay safe.
1. What Is the Threat?
The vulnerability is linked to WhatsApp’s linked-device sync system, where errors in authorization processing can be exploited.
Hackers can send malicious links to targeted users.
Once clicked, these links may silently grant attackers access to:
Private conversations
Stored media (photos, videos)
Personal files and data
CERT-In also revealed that in some cases, this flaw has been combined with another iOS vulnerability (CVE-2025-43300) to create more sophisticated attacks, making it harder for victims to detect unauthorized access.
2. Who Is Most at Risk?
The advisory highlights specific versions of WhatsApp that are vulnerable:
WhatsApp for iOS: Versions older than 2.25.21.73
WhatsApp business for iOS: Version 2.25.21.78
WhatsApp for Mac: Version 2.25.21.78
Users running these versions should update immediately to avoid potential cyberattacks.
3. How to Stay Safe
The indian government has outlined several precautionary measures to protect whatsapp accounts:
Update Immediately
Install the latest whatsapp version from the App Store, which includes a security patch addressing this flaw.
Enable Auto-Update
Turn on automatic updates to ensure your device always runs the most secure version of the app.
Avoid Suspicious Links
Do not click on links from unknown or untrusted sources, as these could be phishing attempts exploiting the vulnerability.
Check Linked Devices
Regularly review and manage devices linked to your whatsapp account to ensure there is no unauthorized access.
4. Why This Alert Is Serious
WhatsApp has over 400 million active users in India.
The vulnerability threatens personal privacy as well as business communications, since many businesses use whatsapp to interact with customers.
Security experts warn that hackers are increasingly using combined flaws in apps and operating systems to launch more powerful attacks.
This alert highlights the growing sophistication of cyber threats and underscores the importance of timely updates and caution online.
5. Final Advice
CERT-In emphasizes that prevention is the best defense. By updating whatsapp and practicing safe online habits, users can significantly reduce their risk of cyberattacks.
Always keep your app and operating system updated.
Avoid clicking on unknown links.
Regularly monitor linked devices for suspicious activity.
Staying alert and proactive is crucial. Every whatsapp user, whether for personal or business use, should update immediately and remain cautious to protect sensitive information..jpg)
click and follow Indiaherald WhatsApp channel